nerdexam
EC-Council

312-50V13 · Question #355

What would you enter if you wanted to perform a stealth scan using Nmap?

The correct answer is C. nmap -sS. To perform a stealth scan using Nmap, you would use the -sS option for a TCP SYN scan, which avoids completing the full TCP three-way handshake.

Submitted by olafpl· Mar 6, 2026Scanning Networks

Question

What would you enter if you wanted to perform a stealth scan using Nmap?

Options

  • Anmap -sM
  • Bnmap -sU
  • Cnmap -sS
  • Dnmap -sT

How the community answered

(26 responses)
  • A
    4% (1)
  • B
    8% (2)
  • C
    88% (23)

Why each option

To perform a stealth scan using Nmap, you would use the `-sS` option for a TCP SYN scan, which avoids completing the full TCP three-way handshake.

Anmap -sM

The `nmap -sM` option is not a recognized or standard Nmap scan type.

Bnmap -sU

The `nmap -sU` option performs a UDP scan, which targets UDP ports and is not considered a stealthy TCP scan.

Cnmap -sSCorrect

The `nmap -sS` command performs a TCP SYN scan, also known as a 'stealth scan' or 'half-open scan.' This method sends a SYN packet and waits for a SYN/ACK (indicating an open port) or RST (indicating a closed port) without completing the three-way handshake, making it less likely to be logged by the target system than a full TCP connect scan.

Dnmap -sT

The `nmap -sT` option performs a TCP connect scan, which completes the full three-way handshake, making it easily detectable and loggable by the target system and thus not considered stealthy.

Concept tested: Nmap stealth scanning (SYN scan)

Source: https://nmap.org/book/man-port-scanning-techniques.html

Topics

#Nmap#stealth scan#SYN scan#port scanning

Community Discussion

No community discussion yet for this question.

Full 312-50V13 Practice